1 / 35

Adaptive Redaction

Adaptive Redaction. Sales Training. Agenda. Introduction Why do we need adaptive redaction? What’s adaptive redaction? How can adaptive redaction be used? Summary. Adaptive Redaction. Why do we need adaptive redaction?. The need for Data Loss Prevention (DLP).

aolani
Download Presentation

Adaptive Redaction

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Adaptive Redaction Sales Training

  2. Agenda • Introduction • Why do we need adaptive redaction? • What’s adaptive redaction? • How can adaptive redaction be used? • Summary

  3. Adaptive Redaction Why do we need adaptive redaction?

  4. The need for Data Loss Prevention (DLP) • With greater collaboration and the use of hosted services, controlling data transfer is a challenge • PWC survey showed 32% of all organizations suffered a staff related data loss or leakage incident in 2012 • DLP controls are needed to ensure employees are using data responsibly • However • DLP will stop the whole transmission • DLP solutions can generate lots of additional manual processing • DLP can be too slow to react • DLP can be very expensive and require specialist products *PWC Cyber Security Breach Survey 2013

  5. There has to be a better way? • What if? • Your existing perimeter products could stop the violation from happening, not just report on it • Your existing perimeter products had improved data accuracy • Your existing perimeter products could “fix” the problem and let the data pass • Your existing perimeter product could do this automatically Adaptive Redaction

  6. Adaptive Redaction What’s adaptive redaction?

  7. What’s adaptive redaction? • Collective term for all actions which change information • Technology built into Clearswift SECURE Gateways • Easily build on your existing information security policy • No need to start from scratch

  8. Why adaptive? • It all depends on context • What you see depends on • Who you are • How it is being communicated Modified Modified Encrypted Clearswift SECURE Email Gateway Clearswift SECURE Web Gateway Users Blocked Blocked

  9. SECURE Gateway options • Data redaction • Remove sensitive information • Document sanitization • Remove meta-data, version and document history • Structural sanitization • Remove active content • Encryption • Secure data in transit • Remote users • Apply consistent policy to remote users

  10. Data redaction Problem • Risk that confidential information may be shared inappropriately • Business stops due to conventional data loss prevention (DLP) solution ‘stop and block’ functionality Solution • Automatically remove sensitive information from web pages, emails and documents • Share information without breaking legislative requirements (e.g. PCI DSS) • Avoid unnecessary barriers

  11. Data redaction How • Gateway detects sensitive information and removes it • Triggered by lexical analysis (e.g. profanity, Credit Card numbers, patient ids) • Redacted document delivered • Automated • Works in both directions Users Clearswift SECURE Gateway Document + Sensitive Information Redacted Document Recipients

  12. Data redaction How Modified document without Sensitive Information Document with PCI Information Modified document without PCI Information Upload document with Sensitive Information Cloud storage User Clearswift SECURE Web Gateway

  13. Comments, headers and footers

  14. Data redaction How • Supported formats include: • Microsoft Word (Office 2007+) • Microsoft Excel (Office 2007+) • Microsoft PowerPoint (Office 2007+) • HTML • PDF • RTF • Text

  15. Document sanitization Problem • Organizations need to collaborate with third parties • Sensitive information can be exposed in meta-data, quick save, etc. Solution • Automatically detect and remove sensitive information from documents • Prevent embarrassing disclosures • Users can still share documents without unnecessary barriers

  16. Document sanitization What they thought they sent What they actually sent

  17. Document sanitization How • Gateway detects and removes • All document properties • Selected document properties • All revision history • Automated Users Clearswift SECURE Gateway Sanitized Document Document + Sensitive Information Recipients

  18. Document sanitization How • Supported formats include: • Microsoft Word (Office 2007+) • Microsoft Excel (Office 2007+) • Microsoft PowerPoint (Office 2007+) • PDF Users Clearswift SECURE Gateway Document + Sensitive Information Sanitized Document Recipients

  19. Structural sanitization Problem • Risk of malware embedded in common file formats • Threat increasing • Common vector for exploits leading to loss of data Solution • Automatically detect and remove active content • Improved defense from malware • Users can still transmit/receive valid content

  20. Structural sanitization How • Gateway detects active content and removes it • Sanitized document delivered • Automated • Works in both directions http://xxxxxxstralia.com.au/flash/uss05.exe Users Document + Macros + Embedded DLLs Clearswift SECURE Gateway Internet Sanitized Document

  21. Structural sanitization How

  22. Sanitization - Sample

  23. Encryption Problem • Employees need to send and receive sensitive data • Requirement to keep it secure in transit • Risk that confidential information may be shared inappropriately Solution • Email Gateway offers multiple encryption technologies • Prevent data leakage • Share information without breaking legislative requirements (e.g. PCI DSS) • Avoid unnecessary barriers

  24. Encryption How • Email Gateway supports • TLS as standard • PGP, S/MIME and password protected zip as optional add-on • Portal based encryption as optional add-on • Automated Users Encrypted Email Clearswift SECURE Gateway Email + Sensitive Information Recipients

  25. Remote users Problem • Need to protect remote users, but VPN not practical • Policy for remote users doesn’t match on premise users • Additional management overhead Solution • Easy to configure support for remote users • Consistent policy for users within and outside the office • Consolidated reporting • Reduced management

  26. Remote users How • AV, URL filtering, content inspection and DLP • Configured and managed centrally from Web Gateway • Automatic off-site, on-site detection Home/Hotel Network Internal Network DMZ Firewall Users Firewall Firewall Clearswift SECURE Web Gateway Users Web Proxy Firewall Users Internet Business Network Clearswift SECURE Web Gateway (Remote User)

  27. Remote users How • Remote user software available from website • Supports Windows 7, 8 and Mac OSX • Pre-Shared Key (PSK) ensures only authorised clients can use proxy • Ability to register Wi-Fi hotspot

  28. Adaptive Redaction How can adaptive redaction be used?

  29. Hygiene • Remove active content from documents • Prevents malware from entering/leaving organization

  30. Duty of Care • Redact objectionable terms from emails and Internet traffic: • Profanity • Racism • Homophobic terms

  31. Data Loss Prevention • Acquisition targets • Products in development • Names of individuals • Military ranks • Classified information • Payment Card Information (PCI) • Personally Identifiable Information (PII) • Internal DLP

  32. Social Media • Protection from users being less security conscious on social media • Extending DLP to social media • Recommend blocking here

  33. Adaptive Redaction Summary

  34. Summary • Why do we need adaptive redaction? • What’s adaptive redaction? • Data redaction • Document sanitization • Structural sanitization • Encryption • Remote users • How can adaptive redaction be used?

  35. Questions? www.clearswift.com • [INSERT YOUR CONTACT DETAILS]

More Related